🚨 Latest Research:Tanstack npm Packages Compromised in Ongoing Mini Shai-Hulud Supply-Chain Attack.Learn More →
@igloo-ui/bar-chart
Advanced tools
@igloo-ui/bar-chart - npm Package Compare versions
+3
-3
| { | ||
| "name": "@igloo-ui/bar-chart", | ||
| "version": "0.4.3", | ||
| "version": "0.4.4", | ||
| "main": "dist/BarChart.js", | ||
@@ -27,3 +27,3 @@ "module": "dist/BarChart.js", | ||
| "dependencies": { | ||
| "@hopper-ui/tokens": "^4.0.0", | ||
| "@hopper-ui/tokens": "^4.2.0", | ||
| "@igloo-ui/tokens": "^2.1.0", | ||
@@ -41,3 +41,3 @@ "classnames": "^2.3.2", | ||
| ], | ||
| "gitHead": "cce9f30554a3b477ab723469ac3afccdddebd0f1" | ||
| "gitHead": "3edb48bd7a5036a316fa646955aeba4957c46475" | ||
| } |
New alerts
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 2 instances in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Fixed alerts
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 2 instances in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
No metric changes
Dependency changes
Updated
@hopper-ui/tokens@^4.2.0